Menu
New

Magento 2 CSP Reports Extension

Hyva icon

Magento 2 CSP Extension tap to zoom

version 1.0.1
Price: Free
  • CE: 2.3.5 - 2.4.6
    EE: 2.3.5 - 2.4.6
  • 100%
    Open Code
  • 60 Days
    Refund Policy
  • Marketplace
    Approved

Magento 2 CSP Reports is a free extension that enhances the security workflow for Magento admins by providing detailed reports and notifications of blocked resources. This enables admins to control the Magento 2 content security policy (CSP), timely address any issues that arise, and ensure a secure browsing experience for customers.



  • Leverage from detailed CSP reports and admin notifications

  • Change CSP modes directly from the admin panel

  • Keep the CSP report clean and informative by removing resolved issues


  • CE: 2.3.5 - 2.4.6
    EE: 2.3.5 - 2.4.6
  • 100%
    Open Code
  • 60 Days
    Refund Policy
  • Marketplace
    Approved
Product Details
Version: 1.0.1 (Jul 04, 2023)
Documentation: User Guide
Live Demo: View
Code Visibility: 100% Open Code
Supported CE - EE: CE 2.3.5 - 2.4.6
EE 2.3.5 - 2.4.6
License: Single Magento Installation
Free Updates & Support: 1 year (Details)
No subscriptions
Refund Policy: 60 Days (View)

Key Features of Magento 2 CSP Reports Extension

Take Security Measures to Avoid Data Injection Attacks

Take Security Measures to Avoid Data Injection Attacks

Take Security Measures to Avoid Data Injection Attacks

Enhance your Magento store security by monitoring and quickly addressing any potential CSP vulnerabilities.
Provide customers with a secure online shopping experience by preventing card skimmers, session hijacking, clickjacking, etc.

Gain Comprehensive Magento 2 CSP Reports

Gain Comprehensive Magento 2 CSP Reports
Benefit from a detailed reports grid that shows admins a comprehensive view of resources that were restricted from loading on a specific page.
The Magento 2 CSP Reports grid informs you of what resources were restricted from loading, when, on what page, their host, and directive.
Keep the report clean and informative - specify the number of days after which the report will be deleted from the grid if not reported again.

Stay Alert with Admin Notification for New CSP Violations

Stay Alert with Admin Notification for New CSP Violations

Stay Alert with Admin Notification for New CSP Violations

The Magento 2 CSP extension provides a notification system that keeps administrators informed about new reports.
By receiving notifications, admins can timely act on policy violations and take appropriate actions to minimize vulnerability risks.

Effortlessly Manage CSP Modes from the Admin Panel

Effortlessly Manage CSP Modes from the Admin Panel
Configure CSP modes separately for admin and storefront areas to have granular control over the allowed content sources and customize settings based on your specific needs.
In the “Report Only” CSP mode, Magento reports policy violations but does not take any actions, which is a safe transition of your website to a “Restrict” mode.
In the “Restrict” CSP mode, Magento both reports policy violations and acts on them by blocking these resources. This mode is highly recommended for the admin area to keep sensitive customer data secure.

Overview of Magento 2 CSP Reports Extension

Starting from 2.3.5 version, Magento supports Content Security Policies (CSP) module - powerful functionality that controls resources the browser is allowed to load for a specific page. This ensures website protection against Cross Site Scripting (XSS) attacks, including card skimmers, session hijacking, and more. Magento also provides the ability to configure the functionality at the programming level, which requires coding skills and lacks a violation monitoring tool for admins.

Our free Magento 2 CSP Module streamlines security management for both developers and admins. Store admins can configure CSP modes directly from the admin panel and effectively monitor policy violations with a user-friendly CSP reports grid. This enables timely issue identification and fixing to ensure a secure online shopping experience for customers. Additionally, the extension reduces the time for developers to whitelist safe resources and delete others.

All Features:

  • NEW! Compatible with Hyvä Themes
  • Ability to change the Magento 2 Content Security Policy mode to “Restrict” or “Report Only” directly from the admin panel, separately for the storefront and admin areas
  • Displaying Magento 2 Content Security Policy violation report in a convenient grid view
  • The Magento 2 CSP report grid includes the following information: Host and Violated Directive, Resource URL and Page URL where the violation occurred, Action (reporting or blocking the resource), Report Count, and Last Report Date
  • Ability to clean up the report from errors that haven't been reported again in a specified time period
  • Admin notification about each new Content Security Policy violation
  • 100% open code Magento 2 extension

Reviews of Magento 2 CSP Reports Extension

Stylus icon Write a Review

Every customer will automatically receive
$10 in reward points for each approved review.

  • Customer photo
    It's free and awesome!
    I'm using it on: cepmania.com, cepmania.net
    Turkey ERCAN KÖKSEL posted on September 11, 2023. Review for Magento 2.x
    It's really great that such a extension is free.
    It gives you very valuable information in the background.

    Plumrocket is always my favourite.

    Thank you so much again!

Change Log of Magento 2 CSP Reports Extension

Legend:  - new feature - bug fix

Version 1.0.1 Jul 04, 2023

  • Fixed installation via composer on Magento v2.4.6

Version 1.0.0 Jun 29, 2023

  • Created CSP Reports extension for Magento 2